Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917A19F/B9EA04C6059411F0A2E0E15CC4F9AE02/78407374059511F09E46645EC4F9AE02.roa
File: 78407374059511F09E46645EC4F9AE02.roa (raw, json)
Hash identifier: IrXjy36RQKi+KndLtYBcRlKIcRl9pF7mIK0dlbNp+zc=
Subject key identifier: 95:E2:F1:BA:61:28:E0:05:45:EC:20:20:66:19:06:04:06:CF:87:95
Certificate issuer: /CN=A917A19F/serialNumber=62C71F6AE91629F854CA94641761B6522CD480C3
Certificate serial: 02
Authority key identifier: 62:C7:1F:6A:E9:16:29:F8:54:CA:94:64:17:61:B6:52:2C:D4:80:C3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YscfaukWKfhUypRkF2G2UizUgMM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917A19F/B9EA04C6059411F0A2E0E15CC4F9AE02/78407374059511F09E46645EC4F9AE02.roa
Signing time: Thu 20 Mar 2025 14:13:18 +0000
ROA not before: Thu 20 Mar 2025 14:13:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 153706
IP address blocks: 163.223.146.0/24 maxlen: 24
163.223.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917A19F
Validity
Not Before: Mar 20 14:13:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=67dc227d-0199
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:68:ad:70:ac:4f:77:3e:0c:3c:4a:bc:96:a7:
ed:64:93:0a:e8:22:fd:fd:bd:78:ad:67:bb:aa:1f:
42:87:16:18:62:07:9b:97:40:dd:84:ca:88:bf:e3:
4a:f8:f9:12:6c:6e:f8:e3:ab:5d:9c:0e:5a:c9:28:
87:bf:01:57:e5:71:be:36:18:ab:2e:d4:10:f3:25:
db:06:ee:2f:47:9a:7a:07:d5:a9:6a:e6:49:5c:7e:
8f:aa:fa:b3:0b:71:6b:6a:30:db:a3:55:6d:92:b3:
67:79:c8:71:86:c5:9c:4e:d5:a5:63:e6:bf:12:b9:
27:55:07:9d:1e:da:4c:55:85:0c:62:dc:3a:bb:d8:
0d:d0:3c:4e:d4:0e:ca:b8:bc:9c:44:9b:0a:cb:84:
81:ed:85:d1:03:f6:bf:71:a1:52:41:f8:ec:b1:ee:
a7:ec:62:46:29:31:e9:12:e1:d0:31:83:66:47:0b:
04:28:5e:20:7b:83:e5:c6:94:e3:9e:0b:34:ef:1e:
29:45:39:d1:22:20:da:15:ef:f7:f8:47:03:24:66:
20:35:5c:ed:74:bb:d5:b7:11:50:8e:a7:b5:9d:ab:
4b:93:9c:1a:d9:cf:96:08:1f:e8:3e:d4:c0:55:54:
5c:91:f1:38:62:12:e3:7f:b1:34:04:74:81:19:a7:
94:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:E2:F1:BA:61:28:E0:05:45:EC:20:20:66:19:06:04:06:CF:87:95
X509v3 Authority Key Identifier:
keyid:62:C7:1F:6A:E9:16:29:F8:54:CA:94:64:17:61:B6:52:2C:D4:80:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917A19F/B9EA04C6059411F0A2E0E15CC4F9AE02/YscfaukWKfhUypRkF2G2UizUgMM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YscfaukWKfhUypRkF2G2UizUgMM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A19F/B9EA04C6059411F0A2E0E15CC4F9AE02/78407374059511F09E46645EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
163.223.146.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:4c:39:6e:56:d4:7d:f1:d1:11:99:87:5a:7e:07:20:3e:7b:
7f:b3:4a:91:13:dc:71:22:15:4b:19:28:67:33:d7:fb:f0:c6:
e0:ec:2d:5f:30:64:3d:e6:8d:2f:69:35:9b:08:27:8d:08:46:
5a:e2:f2:07:05:5e:c9:02:fe:7e:2e:f7:4d:62:de:e8:b8:75:
ca:83:0b:74:60:17:94:6e:50:82:fb:c2:b8:e0:1d:b3:4a:77:
1c:a8:df:01:0d:d6:f9:b6:94:d2:3e:80:83:6e:e8:aa:88:dd:
8e:2d:02:10:42:cc:de:ba:72:3a:f7:0d:2c:46:0d:7f:3b:95:
13:ec:f0:f3:e5:ea:bf:ba:19:77:db:7b:fd:a8:b4:d2:a5:61:
e0:0b:f3:ec:74:c2:7b:6c:17:10:20:7b:a4:2e:33:3a:55:1d:
a2:1a:c4:72:4b:5a:5f:7d:f2:38:fa:24:0f:e1:7f:a2:81:c1:
56:4f:2f:f8:cd:65:f5:ea:b3:5d:ff:38:bc:d6:8f:53:e0:63:
b7:c4:c5:32:f6:48:05:4d:1d:5a:8f:d9:57:86:a2:7c:d3:a8:
41:0c:e2:8c:16:20:92:7a:03:d5:27:65:64:95:e2:57:58:11:
5c:65:67:f1:e5:87:0d:24:6b:58:98:e2:10:03:10:5e:b0:33:
c6:a2:64:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:09:55 2025 by rpki-client